FEX Imager™

ShadowCopy Analyzer

ShadowCopy Analyzer is a tool for cybersecurity researchers to analyze and utilize the ShadowCopy technology for file recovery and system restoration.

bstrings

A command-line tool for searching and extracting strings from files with various options like ASCII and Unicode string search.

OS X Auditor

A Mac OS X computer forensics tool for analyzing system artifacts, user files, and logs with reputation verification and log aggregation capabilities.

Katana

A next-generation crawling and spidering framework for extracting data from websites

Margarita Shotgun

Python tool for remote memory acquisition

MFT_Browser

Recreates the File/Directory tree structure from an extracted $MFT file with detailed record mapping and analysis capabilities.

CDQR - Cold Disk Quick Response

A tool that uses Plaso to parse forensic artifacts and disk images, creating custom reports for easier analysis.

LFI-Enum

Scripts to automate the process of enumerating a Linux system through a Local File Inclusion (LFI) vulnerability.